698,26 → 698,25 |
########################################################################################## |
init_db () |
{ |
rm -rf /var/lib/mysql # to be sure that there is no former installation |
mkdir -p /var/lib/mysql/.tmp |
chown -R mysql:mysql /var/lib/mysql/ |
[ -e /etc/my.cnf.rpmnew ] && mv /etc/my.cnf.rpmnew /etc/my.cnf # prend en compte les migrations de MySQL |
[ -e /etc/my.cnf.default ] || cp /etc/my.cnf /etc/my.cnf.default |
$SED "s?^#bind-address.*?bind-address=127.0.0.1?g" /etc/my.cnf |
$SED "s?^tmpdir.*?tmpdir=/tmp?g" /etc/my.cnf |
systemctl start mysqld.service |
sleep 4 |
mysqladmin -u root password $mysqlpwd |
MYSQL="/usr/bin/mysql -uroot -p$mysqlpwd --exec" |
# Secure the server |
$MYSQL="DROP DATABASE IF EXISTS test;DROP DATABASE IF EXISTS tmp;" |
$MYSQL="CONNECT mysql;DELETE from user where User='';DELETE FROM user WHERE User='root' AND Host NOT IN ('localhost','127.0.0.1','::1');FLUSH PRIVILEGES;" |
# Delete exemple databases if exist |
$MYSQL="DROP DATABASE IF EXISTS test;DROP DATABASE IF EXISTS tmp;CONNECT mysql;DELETE from user where user='';FLUSH PRIVILEGES;" |
# Create 'radius' database |
$MYSQL="CREATE DATABASE IF NOT EXISTS $DB_RADIUS;GRANT ALL ON $DB_RADIUS.* TO $DB_USER@localhost IDENTIFIED BY '$radiuspwd';FLUSH PRIVILEGES;" |
# Add an empty radius database structure |
mysql -u$DB_USER -p$radiuspwd $DB_RADIUS < $DIR_CONF/radiusd-db-vierge.sql |
# modify the start script in order to close accounting connexion when the system is comming down or up |
[ -e /usr/lib/systemd/system/mysqld.service.default ] || cp /usr/lib/systemd/system/mysqld.service /usr/lib/systemd/system/mysqld.service.default |
$SED "/ExecStartPost=/a ExecStartPost=[ -e /usr/local/sbin/alcasar-mysql.sh ] && /usr/local/sbin/alcasar-mysql.sh -acct_stop" /usr/lib/systemd/system/mysqld.service |
$SED "/ExecStartPost=/a ExecStop=[ -e /usr/local/sbin/alcasar-mysql.sh ] && /usr/local/sbin/alcasar-mysql.sh -acct_stop" /usr/lib/systemd/system/mysqld.service |
systemctl daemon-reload |
[ -e /etc/init.d/mysqld.default ] || cp /etc/init.d/mysqld /etc/init.d/mysqld.default |
$SED "/wait_for_pid created/a echo \"Flush ALCASAR open accounting sessions\"; /usr/local/sbin/alcasar-mysql.sh -acct_stop" /etc/init.d/mysqld |
$SED "/'stop')/a echo \"Flush ALCASAR open accounting sessions\"; /usr/local/sbin/alcasar-mysql.sh -acct_stop" /etc/init.d/mysqld |
} # End init_db () |
|
########################################################################## |
777,7 → 776,7 |
cp -f $DIR_CONF/radius/counter.conf /etc/raddb/sql/mysql/counter.conf |
chown -R radius:radius /etc/raddb/sql/mysql/* |
# insures that mysql is up before radius start |
$SED "s?^After=.*?After=syslog.target network.target mysqld.service?g" /usr/lib/systemd/system/radiusd.service |
$SED "s?^After=.*?After=syslog.target network.target mysqld.service?g" /lib/systemd/system/radiusd.service |
|
} # End param_radius () |
|
1079,9 → 1078,10 |
# automatisation de la mise à jour de la base antivirale (toutes les 2 heures) |
$SED "s?^Checks.*?Checks 12?g" /etc/freshclam.conf |
$SED "s?^NotifyClamd.*?# NotifyClamd /etc/clamd.conf?g" /etc/freshclam.conf |
# Copy of the main virus database |
# Virus database update |
rm -f /var/lib/clamav/*.cld # in case of old database scheme |
cp -f $DIR_CONF/clamav-main.cvd /var/lib/clamav/main.cvd |
/usr/bin/freshclam |
} |
|
################################################################################## |
1156,10 → 1156,10 |
chown -R apache:www-data /var/log/netflow/porttracker/ |
chmod -R 775 /var/log/netflow/porttracker |
#Configuration du fichier de conf d'apache |
if [ -f /etc/httpd/conf/conf.d/nfsen.conf ];then |
rm -f /etc/httpd/conf/conf.d/nfsen.conf |
if [ -f /etc/httpd/conf.d/nfsen.conf ];then |
rm -f /etc/httpd/conf.d/nfsen.conf |
fi |
cat <<EOF >> /etc/httpd/conf/conf.d/nfsen.conf |
cat <<EOF >> /etc/httpd/conf.d/nfsen.conf |
Alias /nfsen /var/www/nfsen |
<Directory /var/www/nfsen/> |
DirectoryIndex nfsen.php |
1479,12 → 1479,12 |
WantedBy=multi-user.target |
EOF |
# processes launched at boot time (SYSV) |
for i in chilli netfs havp |
for i in ntpd iptables ulogd dnsmasq chilli httpd radiusd netfs dansguardian havp freshclam |
do |
/sbin/chkconfig --add $i |
done |
# processes launched at boot time (Systemctl) |
for i in alcasar-load_balancing nfsen mysqld httpd ntpd iptables ulogd dnsmasq radiusd dansguardian freshclam |
for i in alcasar-load_balancing.service nfsen.service mysqld.service |
|
do |
systemctl enable $i |